Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/0Iu6-Exhg5M1uWmy4PrWHNsaHi4.roa
File: 0Iu6-Exhg5M1uWmy4PrWHNsaHi4.roa (raw, json)
Hash identifier: L+h0D0MQGuzpUoPNcdy7fkMVT2VQ6/i/XCcHtgihePo=
Subject key identifier: D0:8B:BA:F8:4C:61:83:93:35:B9:69:B2:E0:FA:D6:1C:DB:1A:1E:2E
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 01824A697E999F06C49A3F7D3C5D0F8672F8
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/0Iu6-Exhg5M1uWmy4PrWHNsaHi4.roa
Signing time: Fri 29 Jul 2022 14:43:23 +0000
ROA not before: Fri 29 Jul 2022 14:43:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197248
IP address blocks: 92.52.223.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:4a:69:7e:99:9f:06:c4:9a:3f:7d:3c:5d:0f:86:72:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jul 29 14:43:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d08bbaf84c61839335b969b2e0fad61cdb1a1e2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:75:c6:c9:c6:32:82:34:26:ca:04:7a:eb:eb:
4b:89:af:b0:33:17:52:be:7e:2a:d4:9c:d6:c4:82:
e9:d8:20:57:2b:97:97:d8:45:37:41:47:3a:6f:e7:
dc:4d:11:16:33:ad:1f:dd:29:9c:cf:cf:7d:a9:b8:
b6:73:ba:27:88:94:cc:2a:dc:d8:7b:44:6e:fa:78:
27:a1:43:27:c5:6a:4d:e1:ef:d5:d3:24:af:37:a3:
4f:6a:9a:61:3a:fa:69:cb:a6:2d:62:b6:2a:92:6c:
40:4e:45:70:7f:20:7a:66:75:99:f4:af:c7:2b:65:
d6:f4:92:11:3a:04:22:a3:60:cd:a7:9f:20:ff:d0:
dc:d2:18:52:9a:7a:e1:e4:62:04:59:ab:f1:2e:96:
ba:64:61:41:a3:96:cb:33:15:9c:60:10:a6:a2:6b:
52:5f:89:45:28:cd:aa:a0:31:53:e1:4b:9b:77:1d:
69:ff:6f:4a:1b:84:3d:ce:09:5e:86:dc:65:58:73:
f3:d4:86:a3:ad:12:56:d5:05:a9:88:24:8a:e1:21:
71:c0:4a:bb:e9:0c:70:f7:08:f8:dc:57:bf:24:09:
73:5c:0a:b3:c8:e6:64:7c:91:83:b1:09:f9:f9:b9:
5e:d1:1b:c7:63:46:42:49:2c:b1:a0:db:44:26:a1:
b5:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:8B:BA:F8:4C:61:83:93:35:B9:69:B2:E0:FA:D6:1C:DB:1A:1E:2E
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/0Iu6-Exhg5M1uWmy4PrWHNsaHi4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.52.223.0/24
Signature Algorithm: sha256WithRSAEncryption
88:40:d6:a9:e6:b2:37:9c:72:28:ab:ed:df:0d:d7:4c:43:41:
70:c4:b2:9a:d5:ac:3b:d6:38:56:66:ad:00:31:13:2b:af:84:
31:86:b4:ad:a0:0a:60:bc:0a:2f:a4:58:fb:2d:0c:82:35:9a:
61:62:db:09:ab:f4:04:bd:f4:b7:87:08:f6:ff:a3:0d:24:b3:
39:06:bb:3d:07:8c:8b:9d:9f:08:31:26:1c:f9:15:a9:35:d6:
53:1d:9a:98:b8:c6:f4:0c:b8:d7:4b:3c:7c:09:02:f0:88:7c:
0b:79:c1:5c:f3:4b:26:5e:33:2e:02:0c:99:ed:e4:58:2d:6a:
a0:8f:e3:b8:96:72:2a:bf:47:de:20:e1:9a:3f:9f:f4:b0:b3:
71:68:6f:97:ee:40:a0:5c:d7:84:d1:e0:8a:ef:e1:21:43:4d:
ec:3b:8b:ff:6b:9c:2a:2c:2d:d8:be:34:11:f5:f6:f1:ab:9b:
27:75:36:f5:86:c8:55:a1:70:71:86:c3:df:27:92:dc:b2:17:
a1:97:72:75:40:8a:90:22:43:3f:10:c8:15:55:96:2d:16:da:
de:44:74:90:5e:33:71:6e:9b:86:04:77:08:15:ff:3a:1d:e7:
70:df:1b:7e:0a:c9:59:17:10:dd:27:f9:8a:ac:73:cc:11:8e:
8a:45:8c:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:25 2024 by rpki-client on console-fra.rpki-client.org